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Claims 

What is claimed is: 

1* A method for controlling access to information, the method 
comprising the steps of : 

maintaining, for a given entity controlling access to the 
information, a contact list comprising information identifying one or 
more other entities which have attempted to communicate with the given 
entity; and 

utilising the contact list in conjunction with a revocation 
list associated with the given entity to determine which of at least 
a subset of the o\e or more other entities are authorized to 
communicate with the given entity. 

2. The method of claim 1 wherein the given entity and at least 
a subset of the one or more \ther entities each comprise a consumer 
electronics device. 



3. The method of claim 1 wherein the maintaining and utilizing 



\ 



steps are implemented in an access control system associated with the 
given entity. 



4. The method of claim 3 wherein the revocation list comprises 
a local revocation list stored in the access control system. 



5. The method of claim 1 wherein the contact list comprises a 
plurality of entries, each entry including at least an identifier of 



# # 



PHA 23,871 



a particular one of the other entities and a corresponding revocation 
f lag\lndicating whether authorization of the particular entity has 
been revoked* 



6, The method of claim 5 further including the step of updating 
the contact Mst after a modification of the revocation list. 



7 . The method of claim 6 wherein the step of updating the 
contact list after \a modification of the revocation list further 
10 includes the steps of :\ 

identifying ai^ of the entities in the contact list that do 
not have their corresponding revocation flag set; and 



£; determining, for Wch of the entities identified as being on 

H the contact list but not having a set revocation flag, whether that 

o . . \ ... 

15 entity is on the modified locad revocation list, and if such an entity 
Ij is determined to be on the modified local revocation list, setting its 

revocation flag in the contact \ist. 



8. The method of claim 5 further including the step of updating 
20 the contact list if a new entity not\already included in the contact 

list attempts to communicate with the\given entity. 

9. The method of claim 8 whereirvv the step of updating the 
contact list if a new entity not already included in the contact list 

25 attempts to communicate with the given entity^ further includes the 
steps of : 
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r storing in the contact list an entity identifier for the new 
entity if Vhere is sufficient space available in the contact list; and 
determining if the new entity is on the revocation list, and 
if it is, setting the corresponding revocation flag for the new entity 
in the contact list. 



10. The method of claim 9 further including the step of 
selecting a particular entry of the contact list for removal from the 
contact list if there is not sufficient space available in the contact 
10 list for the new entity, 



11. The method of (^laim 10 wherein the selecting step is 
implemented using a random or pseudo-random selection process. 



15 12. The method of claim 5 Wherein the contact list is configured 

such that the revocation flag of ^ particular entry may not be cleared 
once that flag has been set as long as that entry remains in the 
contact list. 

20 13. The method of claim 1 further including the step of 

periodically generating a digital signature for at least a portion of 
the contact list. 

14. The method of claim 13 furtheV including the step of 
25 updating the digital signature each time the\contact list is updated. 
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15. The method of claim 1 wherein each of at least a subset of 
the^other entities stores a contact list having entries corresponding 
to entities which have attempted to communicate with those other 

t - t -\ 

entities\ 

5 

16. AnXapparatus for controlling access to information, the 
apparatus comprising : 

a processor-based device for controlling access to the 
information, wherein the processor-based device is operative to 

10 maintain a contact list comprising information identifying one or more 
other entities which Imve attempted to communicate with the processor- 
based device, and to utilize the contact list in conjunction with a 
revocation list associatecL with the given entity to determine which of 
at least a subset of the one or more other entities are authorized to 

15 communicate with the processor-based device. 

. \ .. . 

17. An article of manufacture comprising a machine-readable 
storage medium containing one ojNyi^re software programs for use in 
controlling access to information, wherein the programs when executed 

20 implement the steps of: 

maintaining, for a given entity controlling access to the 
information, a contact list comprising information identifying one or 
more other entities which have attempted to ^communicate with the given 
entity; and 

25 utilizing the contact list in conjunction with a revocation 

list associated with the given entity to determine which of at least 



19 



PHA 23,871 



a subset of the one or more other entities are authorized to 
communicate with the given entity. 
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